Athenz v1.12.7 Release

What's Changed

• fix: delete unnecessary semicolon by @ysknkd in #2827
• Pass athenz service for gcp function identity attestation by @rajeshal in #2829
• fix ui role and group review radio button affecting members of other roles by @ArtjomsPorss in #2828
• improve communication in expiry/review notification emails by @havetisyan in #2830
• correct order or arguments to assertEquals call in tests by @havetisyan in #2831
• ui fix ctrl/cmd+tab not working for opening group links on role page by @ArtjomsPorss in #2834
• skip calling notify method if there are no recipients by @havetisyan in #2835
• update java/go dependencies to their latest releases by @havetisyan in #2836
• Changed to allow setting the maximum number of records to be deleted and the interval between deletions by @TakuyaMatsu in #2837

Full Changelog: v1.12.6...v1.12.7

Athenz v1.12.6 Release

What's Changed

• refactor functional test to use conditional afterEach by @ArtjomsPorss in #2813
• update ui dependencies - axios and cookie by @ArtjomsPorss in #2814
• aws sdk v2 requires regional url with https scheme by @havetisyan in #2816
• UI - use authorization check to determine launch provider access by @ArtjomsPorss in #2804
• add domain filter to groups and roles by @ArtjomsPorss in #2808
• ui - bump wdio dependencies by @ArtjomsPorss in #2817
• fix ui functional tests by @ArtjomsPorss in #2819
• include instance profile module with zts server binary image by @havetisyan in #2820
• fix ui user reload by @ArtjomsPorss in #2821
• move pulsar messaging changelog impl into its own module by @havetisyan in #2824
• correct handling of pending state field in role/group insert method by @havetisyan in #2825
• update java/go dependencies to their latest release by @havetisyan in #2826
• call close for http based providers only by @havetisyan in #2822

Full Changelog: v1.12.5...v1.12.6

Athenz v1.12.5 Release

What's Changed

• Bump cross-spawn from 7.0.3 to 7.0.5 in /ui by @dependabot in #2799
• disable member extension in role and group review by @ArtjomsPorss in #2794
• provide new api to search services across all domains by @havetisyan in #2800
• ui - bump dependency version by @ArtjomsPorss in #2801
• ui - display all domains that reference current user by @ArtjomsPorss in #2789
• include configured role/group notify details in expiry notification emails by @havetisyan in #2807
• improve interoperability of TF with audit/review-enabled roles/groups by @havetisyan in #2805
• provide useful utility to fetch domain attrs by @havetisyan in #2803
• initialze sia agent/main directories always by @havetisyan in #2809
• update java/go dependencies to their latest releases by @havetisyan in #2812
• If there is only one admin role member, the member cannot be deleted. by @TakuyaMatsu in #2810

Full Changelog: v1.12.4...v1.12.5

Athenz v1.12.4 Release

What's Changed

• use default value for sia-provider for dyanamodb by @havetisyan in #2788
• prettier formatting changes for UI js files by @ArtjomsPorss in #2792
• support for suspended principals when updating roles/groups by @havetisyan in #2791
• define new role/group notify_details and domain slack_channel attributes by @havetisyan in #2793
• Enable changing the provider for X509 certificate by @gyakami in #2795
• add support to provide server-side bundles per key-id by @havetisyan in #2796
• Fix the SIA secret json for parameter store by @rajeshal in #2797
• update java/go dependencies to their latest releases by @havetisyan in #2798

New Contributors

• @gyakami made their first contribution in #2795

Full Changelog: v1.12.3...v1.12.4

Athenz v1.12.3 Release

What's Changed

• Athenz Identity Provider for Harness by @havetisyan in #2773
• Bump next from 13.5.4 to 14.2.15 in /ui by @dependabot in #2765
• Store SIA user agent information in x509 certificate request table by @rajeshal in #2772
• fix functional tests in services.spec by @ArtjomsPorss in #2781
• clean up unused consts in the aws common library by @havetisyan in #2779
• update harness api key env variable name by @havetisyan in #2775
• use configured identity instead of hard-coded sys.auth.monitor identity by @havetisyan in #2780
• Store SIA certificate creds in AWS parameter store, use custom json … by @rajeshal in #2776
• allow % character in tag value by @chandrasekhar1996 in #2777
• keep track of request entries in the role audit log by @havetisyan in #2782
• improve UX of dropdown inputs by @ArtjomsPorss in #2774
• updated java and go dependencies to their latest releases by @havetisyan in #2783
• consistent indentation - formatting change only by @havetisyan in #2784
• fix functional tests in roles.spec by @ArtjomsPorss in #2786
• config option to support ambiguous uris in jetty servlets by @havetisyan in #2787

Full Changelog: v1.12.2...v1.12.3

Athenz v1.12.2 Release

What's Changed

• diplay service provider error message by @ArtjomsPorss in #2761
• [skip ci] specify source/target in example pom.xml by @havetisyan in #2762
• maven central publishing fixes by @havetisyan in #2760
• update example to utilize nimbus library for token validation by @havetisyan in #2764
• update package build list for docker image by @havetisyan in #2763
• update go and java versions for docker builds by @havetisyan in #2767
• touch done files after individual sia commands by @havetisyan in #2766
• update go/java dependencies to their latest release by @havetisyan in #2769
• defer accesstoken error logging by @abvaidya in #2770
• docker build fixes for go 1.22 - no GO111MODULE support by @havetisyan in #2771

Full Changelog: v1.12.1...v1.12.2

Athenz v1.12.1 Release

Athenz 1.12.x includes the following changes:

• Upgrade to Jetty 12.x / EE10 Release using Jakarta 6.x
• Remove all deprecated methods from server side interfaces
• Migrate all aws v1 usage from server side code to aws v2 since v1 sdk is EOL
• Migrate Apache HttpClient 4.x to 5.x
• Server builds are released w/ JDK 17 due to jetty requirement but all client libraries are continued to be built and published with JDK 11 support
• replace jjwt library with nimbus-jwt library
• CI/CD pipeline will be moved from SD to GitHub Actions
• Move AWSPrivateKeyStore implementation from server-common to auth-core where it belongs with the correct package name
• Remove single email notification support and only support consolidated email notifications (there is no point of spamming the admin with 20 separate emails where a single email can include all the roles that the admin needs to review)

Full details about required changes: https://github.com/AthenZ/athenz/blob/master/docs/migration-1.11-to-1.12.md

Athenz v1.11.66 Release

What's Changed

• do not exit when token refresh fails while pod is running by @havetisyan in #2724
• Bump serve-static and express in /ui by @dependabot in #2728
• Bump send and express in /ui by @dependabot in #2726
• Bump body-parser from 1.20.0 to 1.20.3 in /ui by @dependabot in #2725
• disable advanced settings for delegated roles during role creation or editing by @ArtjomsPorss in #2733
• send notification for put role membership decision by @chandrasekhar1996 in #2737
• Adding resource ownership support for MSD API by @yosrixp in #2744
• during delete tenancy check the primary db instance by @havetisyan in #2743
• Adding support to GCE SIA multiple service by @yosrixp in #2740
• send notification for put group membership decision by @chandrasekhar1996 in #2742
• update java and go dependencies to their latest releases by @havetisyan in #2745

Full Changelog: v1.11.65...v1.11.66

Athenz v1.11.65 Release

What's Changed

• not allow principal to approve/reject own requests for audit enabled roles/groups by @havetisyan in #2702
• fix tests failing to run due to babel node sytax conflicts by @ArtjomsPorss in #2703
• add role member UI enhancement by @ArtjomsPorss in #2700
• add group review icon, it becomes red when group review required by @ArtjomsPorss in #2705
• enforce resource ownership for delete role member operation by @chandrasekhar1996 in #2708
• enforce resource ownership for delete group member operation by @chandrasekhar1996 in #2709
• enforce resource ownership for delete assertion operation by @chandrasekhar1996 in #2710
• allow adding authorization header on msd-agent calls by @abvaidya in #2701
• Jonmv/build kite integration by @jonmv in #2706
• Bump micromatch from 4.0.7 to 4.0.8 in /ui by @dependabot in #2716
• fix added tag is displayed in UI, fix delete last tag by @ArtjomsPorss in #2712
• open role and group members in new tab by @ArtjomsPorss in #2718
• email notifications improvements with notify roles and groups by @havetisyan in #2719
• update zms go client with latest rdl changes by @havetisyan in #2722

Full Changelog: v1.11.64...v1.11.65

Athenz v1.11.64 Release

What's Changed

• display warning for expired and disabled members in Roles and Groups by @ArtjomsPorss in #2668
• fix skip non revocable attribute logic by @havetisyan in #2680
• [documentation/github actions provider] Fix service name for prs by @tokle in #2681
• provide java api for gcp workloads to refresh their identity certificates by @havetisyan in #2672
• minor update to the key refresher unit test by @havetisyan in #2682
• more specific error message for user authority filter checks by @havetisyan in #2683
• fix red role review icon conditions by @ArtjomsPorss in #2684
• Adding the Otel Implementation by @salladi30 in #2687
• Bump axios from 1.6.0 to 1.7.4 in /clients/nodejs/zts by @dependabot in #2690
• update java and go dependencies to their latest releases by @havetisyan in #2694
• SIA (Service Identity Agent for GCP Runs by @havetisyan in #2693

New Contributors

• @ArtjomsPorss made their first contribution in #2668
• @salladi30 made their first contribution in #2687

Full Changelog: v1.11.63...v1.11.64